VYPR

rpm package

suse/lua53&distro=SUSE Linux Enterprise Module for Basesystem 15 SP3

pkg:rpm/suse/lua53&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP3

Vulnerabilities (2)

  • CVE-2020-24371Aug 17, 2020
    affected < 5.3.6-3.6.1fixed 5.3.6-3.6.1

    lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.

  • CVE-2020-24370Aug 17, 2020
    affected < 5.3.6-3.6.1fixed 5.3.6-3.6.1

    ldebug.c in Lua 5.4.0 allows a negation overflow and segmentation fault in getlocal and setlocal, as demonstrated by getlocal(3,2^31).